This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Sun First view 2007-10-11
Product Opensolaris Last view 2016-07-11
Version Type Os
Update  
Edition  
Language  
Sofware Edition  
Target Software  
Target Hardware  
Other  

Activity : Overall

COMMON PLATFORM ENUMERATION: Repartition per Version

CPE Name Affected CVE
cpe:2.3:o:sun:opensolaris:snv_75:*:sparc:*:*:*:*:* 65
cpe:2.3:o:sun:opensolaris:snv_76:*:sparc:*:*:*:*:* 65
cpe:2.3:o:sun:opensolaris:snv_77:*:sparc:*:*:*:*:* 65
cpe:2.3:o:sun:opensolaris:snv_73:*:sparc:*:*:*:*:* 65
cpe:2.3:o:sun:opensolaris:snv_74:*:sparc:*:*:*:*:* 65
cpe:2.3:o:sun:opensolaris:snv_79:*:sparc:*:*:*:*:* 64
cpe:2.3:o:sun:opensolaris:snv_70:*:sparc:*:*:*:*:* 64
cpe:2.3:o:sun:opensolaris:snv_71:*:sparc:*:*:*:*:* 64
cpe:2.3:o:sun:opensolaris:snv_72:*:sparc:*:*:*:*:* 64
cpe:2.3:o:sun:opensolaris:snv_61:*:sparc:*:*:*:*:* 64
cpe:2.3:o:sun:opensolaris:snv_78:*:sparc:*:*:*:*:* 64
cpe:2.3:o:sun:opensolaris:snv_69:*:sparc:*:*:*:*:* 64
cpe:2.3:o:sun:opensolaris:snv_62:*:sparc:*:*:*:*:* 64
cpe:2.3:o:sun:opensolaris:snv_68:*:sparc:*:*:*:*:* 64
cpe:2.3:o:sun:opensolaris:snv_67:*:sparc:*:*:*:*:* 64
cpe:2.3:o:sun:opensolaris:snv_81:*:sparc:*:*:*:*:* 64
cpe:2.3:o:sun:opensolaris:snv_80:*:sparc:*:*:*:*:* 64
cpe:2.3:o:sun:opensolaris:snv_73:*:x86:*:*:*:*:* 63
cpe:2.3:o:sun:opensolaris:snv_70:*:x86:*:*:*:*:* 63
cpe:2.3:o:sun:opensolaris:snv_66:*:sparc:*:*:*:*:* 63
cpe:2.3:o:sun:opensolaris:snv_77:*:x86:*:*:*:*:* 63
cpe:2.3:o:sun:opensolaris:snv_76:*:x86:*:*:*:*:* 63
cpe:2.3:o:sun:opensolaris:snv_72:*:x86:*:*:*:*:* 63
cpe:2.3:o:sun:opensolaris:snv_57:*:sparc:*:*:*:*:* 63
cpe:2.3:o:sun:opensolaris:snv_65:*:sparc:*:*:*:*:* 63
cpe:2.3:o:sun:opensolaris:snv_64:*:sparc:*:*:*:*:* 63
cpe:2.3:o:sun:opensolaris:snv_69:*:x86:*:*:*:*:* 63
cpe:2.3:o:sun:opensolaris:snv_58:*:sparc:*:*:*:*:* 63
cpe:2.3:o:sun:opensolaris:snv_74:*:x86:*:*:*:*:* 63
cpe:2.3:o:sun:opensolaris:snv_75:*:x86:*:*:*:*:* 62
cpe:2.3:o:sun:opensolaris:snv_63:*:sparc:*:*:*:*:* 62
cpe:2.3:o:sun:opensolaris:snv_79:*:x86:*:*:*:*:* 62
cpe:2.3:o:sun:opensolaris:snv_71:*:x86:*:*:*:*:* 62
cpe:2.3:o:sun:opensolaris:snv_59:*:sparc:*:*:*:*:* 62
cpe:2.3:o:sun:opensolaris:snv_67:*:x86:*:*:*:*:* 62
cpe:2.3:o:sun:opensolaris:snv_81:*:x86:*:*:*:*:* 62
cpe:2.3:o:sun:opensolaris:snv_60:*:sparc:*:*:*:*:* 62
cpe:2.3:o:sun:opensolaris:snv_64:*:x86:*:*:*:*:* 61
cpe:2.3:o:sun:opensolaris:snv_63:*:x86:*:*:*:*:* 61
cpe:2.3:o:sun:opensolaris:snv_56:*:sparc:*:*:*:*:* 61
cpe:2.3:o:sun:opensolaris:snv_82:*:x86:*:*:*:*:* 61
cpe:2.3:o:sun:opensolaris:snv_62:*:x86:*:*:*:*:* 61
cpe:2.3:o:sun:opensolaris:snv_80:*:x86:*:*:*:*:* 61
cpe:2.3:o:sun:opensolaris:snv_55:*:sparc:*:*:*:*:* 61
cpe:2.3:o:sun:opensolaris:snv_65:*:x86:*:*:*:*:* 61
cpe:2.3:o:sun:opensolaris:snv_61:*:x86:*:*:*:*:* 61
cpe:2.3:o:sun:opensolaris:snv_54:*:sparc:*:*:*:*:* 61
cpe:2.3:o:sun:opensolaris:snv_66:*:x86:*:*:*:*:* 61
cpe:2.3:o:sun:opensolaris:snv_68:*:x86:*:*:*:*:* 61
cpe:2.3:o:sun:opensolaris:snv_57:*:x86:*:*:*:*:* 60

Related : CVE

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
  Date Alert Description
5.3 2016-07-11 CVE-2016-1445

Cisco Adaptive Security Appliance (ASA) Software 8.2 through 9.4.3.3 allows remote attackers to bypass intended ICMP Echo Reply ACLs via vectors related to subtypes.

9.8 2016-04-06 CVE-2016-1291

Cisco Prime Infrastructure 1.2.0 through 2.2(2) and Cisco Evolved Programmable Network Manager (EPNM) 1.2 allow remote attackers to execute arbitrary code via crafted deserialized data in an HTTP POST request, aka Bug ID CSCuw03192.

8.1 2016-04-06 CVE-2016-1290

The web API in Cisco Prime Infrastructure 1.2.0 through 2.2(2) and Cisco Evolved Programmable Network Manager (EPNM) 1.2 allows remote authenticated users to bypass intended RBAC restrictions and gain privileges via an HTTP request that is inconsistent with a pattern filter, aka Bug ID CSCuy10227.

7.5 2016-04-06 CVE-2015-6313

Cisco TelePresence Server 4.1(2.29) through 4.2(4.17) on 7010; Mobility Services Engine (MSE) 8710; Multiparty Media 310, 320, and 820; and Virtual Machine (VM) devices allows remote attackers to cause a denial of service (memory consumption or device reload) via crafted HTTP requests that are not followed by an unspecified negotiation, aka Bug ID CSCuv47565.

6.1 2016-03-28 CVE-2016-1314

Cross-site scripting (XSS) vulnerability in Cisco Unified Communications Domain Manager (CDM) 8.1(1) allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCux80760.

7.5 2016-03-25 CVE-2016-1351

The Locator/ID Separation Protocol (LISP) implementation in Cisco IOS 15.1 and 15.2 and NX-OS 4.1 through 6.2 allows remote attackers to cause a denial of service (device reload) via a crafted header in a packet, aka Bug ID CSCuu64279.

7.5 2016-03-25 CVE-2016-1350

Cisco IOS 15.3 and 15.4, Cisco IOS XE 3.8 through 3.11, and Cisco Unified Communications Manager allow remote attackers to cause a denial of service (device reload) via malformed SIP messages, aka Bug ID CSCuj23293.

7.5 2016-03-25 CVE-2016-1349

The Smart Install client implementation in Cisco IOS 12.2, 15.0, and 15.2 and IOS XE 3.2 through 3.7 allows remote attackers to cause a denial of service (device reload) via crafted image list parameters in a Smart Install packet, aka Bug ID CSCuv45410.

7.5 2016-03-25 CVE-2016-1348

Cisco IOS 15.0 through 15.5 and IOS XE 3.3 through 3.16 allow remote attackers to cause a denial of service (device reload) via a crafted DHCPv6 Relay message, aka Bug ID CSCus55821.

5.9 2016-03-25 CVE-2016-1344

The IKEv2 implementation in Cisco IOS 15.0 through 15.6 and IOS XE 3.3 through 3.17 allows remote attackers to cause a denial of service (device reload) via fragmented packets, aka Bug ID CSCux38417.

7.5 2016-03-24 CVE-2016-1347

The Wide Area Application Services (WAAS) Express implementation in Cisco IOS 15.1 through 15.5 allows remote attackers to cause a denial of service (device reload) via a crafted TCP segment, aka Bug ID CSCuq59708.

8.8 2016-03-04 CVE-2015-8822

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows attackers to execute arbitrary code via crafted MPEG-4 data, a different vulnerability than CVE-2015-8048, CVE-2015-8049, CVE-2015-8050, CVE-2015-8055, CVE-2015-8056, CVE-2015-8057, CVE-2015-8058, CVE-2015-8059, CVE-2015-8061, CVE-2015-8062, CVE-2015-8063, CVE-2015-8064, CVE-2015-8065, CVE-2015-8066, CVE-2015-8067, CVE-2015-8068, CVE-2015-8069, CVE-2015-8070, CVE-2015-8071, CVE-2015-8401, CVE-2015-8402, CVE-2015-8403, CVE-2015-8404, CVE-2015-8405, CVE-2015-8406, CVE-2015-8410, CVE-2015-8411, CVE-2015-8412, CVE-2015-8413, CVE-2015-8414, CVE-2015-8420, CVE-2015-8421, CVE-2015-8422, CVE-2015-8423, CVE-2015-8424, CVE-2015-8425, CVE-2015-8426, CVE-2015-8427, CVE-2015-8428, CVE-2015-8429, CVE-2015-8430, CVE-2015-8431, CVE-2015-8432, CVE-2015-8433, CVE-2015-8434, CVE-2015-8435, CVE-2015-8436, CVE-2015-8437, CVE-2015-8441, CVE-2015-8442, CVE-2015-8447, CVE-2015-8448, CVE-2015-8449, CVE-2015-8450, CVE-2015-8452, CVE-2015-8454, CVE-2015-8653, CVE-2015-8655, and CVE-2015-8821.

8.8 2016-03-04 CVE-2015-8821

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows attackers to execute arbitrary code via crafted MPEG-4 data, a different vulnerability than CVE-2015-8048, CVE-2015-8049, CVE-2015-8050, CVE-2015-8055, CVE-2015-8056, CVE-2015-8057, CVE-2015-8058, CVE-2015-8059, CVE-2015-8061, CVE-2015-8062, CVE-2015-8063, CVE-2015-8064, CVE-2015-8065, CVE-2015-8066, CVE-2015-8067, CVE-2015-8068, CVE-2015-8069, CVE-2015-8070, CVE-2015-8071, CVE-2015-8401, CVE-2015-8402, CVE-2015-8403, CVE-2015-8404, CVE-2015-8405, CVE-2015-8406, CVE-2015-8410, CVE-2015-8411, CVE-2015-8412, CVE-2015-8413, CVE-2015-8414, CVE-2015-8420, CVE-2015-8421, CVE-2015-8422, CVE-2015-8423, CVE-2015-8424, CVE-2015-8425, CVE-2015-8426, CVE-2015-8427, CVE-2015-8428, CVE-2015-8429, CVE-2015-8430, CVE-2015-8431, CVE-2015-8432, CVE-2015-8433, CVE-2015-8434, CVE-2015-8435, CVE-2015-8436, CVE-2015-8437, CVE-2015-8441, CVE-2015-8442, CVE-2015-8447, CVE-2015-8448, CVE-2015-8449, CVE-2015-8450, CVE-2015-8452, CVE-2015-8454, CVE-2015-8653, CVE-2015-8655, and CVE-2015-8822.

8.8 2016-03-04 CVE-2015-8820

Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allow attackers to execute arbitrary code or cause a denial of service (out-of-bounds read and memory corruption) via crafted MPEG-4 data, a different vulnerability than CVE-2015-8045, CVE-2015-8047, CVE-2015-8060, CVE-2015-8408, CVE-2015-8416, CVE-2015-8417, CVE-2015-8418, CVE-2015-8419, CVE-2015-8443, CVE-2015-8444, CVE-2015-8451, CVE-2015-8455, CVE-2015-8652, CVE-2015-8654, CVE-2015-8656, CVE-2015-8657, and CVE-2015-8658.

8.8 2016-03-04 CVE-2015-8658

Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allow attackers to execute arbitrary code or cause a denial of service (uninitialized pointer dereference and memory corruption) via crafted MPEG-4 data, a different vulnerability than CVE-2015-8045, CVE-2015-8047, CVE-2015-8060, CVE-2015-8408, CVE-2015-8416, CVE-2015-8417, CVE-2015-8418, CVE-2015-8419, CVE-2015-8443, CVE-2015-8444, CVE-2015-8451, CVE-2015-8455, CVE-2015-8652, CVE-2015-8654, CVE-2015-8656, CVE-2015-8657, and CVE-2015-8820.

8.8 2016-03-04 CVE-2015-8657

Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allow attackers to execute arbitrary code or cause a denial of service (out-of-bounds read and memory corruption) via crafted MPEG-4 data, a different vulnerability than CVE-2015-8045, CVE-2015-8047, CVE-2015-8060, CVE-2015-8408, CVE-2015-8416, CVE-2015-8417, CVE-2015-8418, CVE-2015-8419, CVE-2015-8443, CVE-2015-8444, CVE-2015-8451, CVE-2015-8455, CVE-2015-8652, CVE-2015-8654, CVE-2015-8656, CVE-2015-8658, and CVE-2015-8820.

8.8 2016-03-04 CVE-2015-8656

Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allow attackers to execute arbitrary code or cause a denial of service (out-of-bounds read and memory corruption) via crafted MPEG-4 data, a different vulnerability than CVE-2015-8045, CVE-2015-8047, CVE-2015-8060, CVE-2015-8408, CVE-2015-8416, CVE-2015-8417, CVE-2015-8418, CVE-2015-8419, CVE-2015-8443, CVE-2015-8444, CVE-2015-8451, CVE-2015-8455, CVE-2015-8652, CVE-2015-8654, CVE-2015-8657, CVE-2015-8658, and CVE-2015-8820.

8.8 2016-03-04 CVE-2015-8655

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows attackers to execute arbitrary code via crafted MPEG-4 data, a different vulnerability than CVE-2015-8048, CVE-2015-8049, CVE-2015-8050, CVE-2015-8055, CVE-2015-8056, CVE-2015-8057, CVE-2015-8058, CVE-2015-8059, CVE-2015-8061, CVE-2015-8062, CVE-2015-8063, CVE-2015-8064, CVE-2015-8065, CVE-2015-8066, CVE-2015-8067, CVE-2015-8068, CVE-2015-8069, CVE-2015-8070, CVE-2015-8071, CVE-2015-8401, CVE-2015-8402, CVE-2015-8403, CVE-2015-8404, CVE-2015-8405, CVE-2015-8406, CVE-2015-8410, CVE-2015-8411, CVE-2015-8412, CVE-2015-8413, CVE-2015-8414, CVE-2015-8420, CVE-2015-8421, CVE-2015-8422, CVE-2015-8423, CVE-2015-8424, CVE-2015-8425, CVE-2015-8426, CVE-2015-8427, CVE-2015-8428, CVE-2015-8429, CVE-2015-8430, CVE-2015-8431, CVE-2015-8432, CVE-2015-8433, CVE-2015-8434, CVE-2015-8435, CVE-2015-8436, CVE-2015-8437, CVE-2015-8441, CVE-2015-8442, CVE-2015-8447, CVE-2015-8448, CVE-2015-8449, CVE-2015-8450, CVE-2015-8452, CVE-2015-8454, CVE-2015-8653, CVE-2015-8821, and CVE-2015-8822.

8.8 2016-03-04 CVE-2015-8654

Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allow attackers to execute arbitrary code or cause a denial of service (out-of-bounds read and memory corruption) via crafted MPEG-4 data, a different vulnerability than CVE-2015-8045, CVE-2015-8047, CVE-2015-8060, CVE-2015-8408, CVE-2015-8416, CVE-2015-8417, CVE-2015-8418, CVE-2015-8419, CVE-2015-8443, CVE-2015-8444, CVE-2015-8451, CVE-2015-8455, CVE-2015-8652, CVE-2015-8656, CVE-2015-8657, CVE-2015-8658, and CVE-2015-8820.

8.8 2016-03-04 CVE-2015-8653

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows attackers to execute arbitrary code via crafted MPEG-4 data, a different vulnerability than CVE-2015-8048, CVE-2015-8049, CVE-2015-8050, CVE-2015-8055, CVE-2015-8056, CVE-2015-8057, CVE-2015-8058, CVE-2015-8059, CVE-2015-8061, CVE-2015-8062, CVE-2015-8063, CVE-2015-8064, CVE-2015-8065, CVE-2015-8066, CVE-2015-8067, CVE-2015-8068, CVE-2015-8069, CVE-2015-8070, CVE-2015-8071, CVE-2015-8401, CVE-2015-8402, CVE-2015-8403, CVE-2015-8404, CVE-2015-8405, CVE-2015-8406, CVE-2015-8410, CVE-2015-8411, CVE-2015-8412, CVE-2015-8413, CVE-2015-8414, CVE-2015-8420, CVE-2015-8421, CVE-2015-8422, CVE-2015-8423, CVE-2015-8424, CVE-2015-8425, CVE-2015-8426, CVE-2015-8427, CVE-2015-8428, CVE-2015-8429, CVE-2015-8430, CVE-2015-8431, CVE-2015-8432, CVE-2015-8433, CVE-2015-8434, CVE-2015-8435, CVE-2015-8436, CVE-2015-8437, CVE-2015-8441, CVE-2015-8442, CVE-2015-8447, CVE-2015-8448, CVE-2015-8449, CVE-2015-8450, CVE-2015-8452, CVE-2015-8454, CVE-2015-8655, CVE-2015-8821, and CVE-2015-8822.

8.8 2016-03-04 CVE-2015-8652

Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allow attackers to execute arbitrary code or cause a denial of service (out-of-bounds read and memory corruption) via crafted MPEG-4 data, a different vulnerability than CVE-2015-8045, CVE-2015-8047, CVE-2015-8060, CVE-2015-8408, CVE-2015-8416, CVE-2015-8417, CVE-2015-8418, CVE-2015-8419, CVE-2015-8443, CVE-2015-8444, CVE-2015-8451, CVE-2015-8455, CVE-2015-8654, CVE-2015-8656, CVE-2015-8657, CVE-2015-8658, and CVE-2015-8820.

9.8 2016-03-03 CVE-2016-1329

Cisco NX-OS 6.0(2)U6(1) through 6.0(2)U6(5) on Nexus 3000 devices and 6.0(2)A6(1) through 6.0(2)A6(5) and 6.0(2)A7(1) on Nexus 3500 devices has hardcoded credentials, which allows remote attackers to obtain root privileges via a (1) TELNET or (2) SSH session, aka Bug ID CSCuy25800.

7.5 2016-03-03 CVE-2015-0718

Cisco NX-OS 4.0 through 6.1 on Nexus 1000V 3000, 4000, 5000, 6000, and 7000 devices and Unified Computing System (UCS) platforms allows remote attackers to cause a denial of service (TCP stack reload) by sending crafted TCP packets to a device that has a TIME_WAIT TCP session, aka Bug ID CSCub70579.

6.1 2016-02-15 CVE-2016-1331

Multiple cross-site scripting (XSS) vulnerabilities in Cisco Emergency Responder 11.5(0.99833.5) allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCuy10766.

8.8 2016-02-10 CVE-2016-0985

Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and before 11.2.202.569 on Linux, Adobe AIR before 20.0.0.260, Adobe AIR SDK before 20.0.0.260, and Adobe AIR SDK & Compiler before 20.0.0.260 allow attackers to execute arbitrary code by leveraging an unspecified "type confusion."

CWE : Common Weakness Enumeration

%idName
30% (29) CWE-399 Resource Management Errors
25% (24) CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer
10% (10) CWE-264 Permissions, Privileges, and Access Controls
6% (6) CWE-362 Race Condition
6% (6) CWE-20 Improper Input Validation
4% (4) CWE-200 Information Exposure
4% (4) CWE-79 Failure to Preserve Web Page Structure ('Cross-site Scripting')
3% (3) CWE-189 Numeric Errors
2% (2) CWE-284 Access Control (Authorization) Issues
2% (2) CWE-255 Credentials Management
2% (2) CWE-16 Configuration
1% (1) CWE-310 Cryptographic Issues
1% (1) CWE-287 Improper Authentication
1% (1) CWE-134 Uncontrolled Format String
1% (1) CWE-89 Improper Sanitization of Special Elements used in an SQL Command ('...

CAPEC : Common Attack Pattern Enumeration & Classification

id Name
CAPEC-1 Accessing Functionality Not Properly Constrained by ACLs
CAPEC-13 Subverting Environment Variable Values
CAPEC-17 Accessing, Modifying or Executing Executable Files
CAPEC-39 Manipulating Opaque Client-based Data Tokens
CAPEC-45 Buffer Overflow via Symbolic Links
CAPEC-51 Poison Web Service Registry
CAPEC-59 Session Credential Falsification through Prediction
CAPEC-60 Reusing Session IDs (aka Session Replay)
CAPEC-76 Manipulating Input to File System Calls
CAPEC-77 Manipulating User-Controlled Variables
CAPEC-87 Forceful Browsing
CAPEC-104 Cross Zone Scripting

Oval Markup Language : Definitions

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
OvalID Name
oval:org.mitre.oval:def:5817 Security Vulnerabilities in DHCP Handling of DHCP Requests May Allow Remote U...
oval:org.mitre.oval:def:20239 DSA-1388-1 dhcp
oval:org.mitre.oval:def:18537 DSA-1388-3 dhcp - buffer overflow
oval:org.mitre.oval:def:17549 USN-531-1 -- dhcp vulnerability
oval:org.mitre.oval:def:17047 USN-531-2 -- dhcp vulnerability
oval:org.mitre.oval:def:5731 A Security Vulnerability in IP Multicast Filter processing of Sockets may lea...
oval:org.mitre.oval:def:5446 Security Vulnerabilities in the Solaris Priority Inherited pthread mutex API ...
oval:org.mitre.oval:def:5318 Security Vulnerability in Solaris snoop(1M) when Displaying SMB Traffic
oval:org.mitre.oval:def:5742 Security Vulnerability in Solaris snoop(1M) when Displaying SMB Traffic
oval:org.mitre.oval:def:5128 A Security Vulnerability in Solaris 10 involving the sendfilev() system call ...
oval:org.mitre.oval:def:5453 Covert Channel Security Vulnerability in the Solaris Kernel
oval:org.mitre.oval:def:5639 Security Vulnerability in the ACL (acl(2)) Implementation for UFS File System...
oval:org.mitre.oval:def:5668 Security Vulnerabilities in DHCP Handling of DHCP Requests May Allow Remote U...
oval:org.mitre.oval:def:6003 Security Vulnerability in the X Inter Client Exchange Library (libICE) Shippe...
oval:org.mitre.oval:def:5949 Security Vulnerability in Solaris IP Tunnel Parameter Processing May Lead to ...
oval:org.mitre.oval:def:5792 A Security Vulnerability in the Management of Solaris Kerberos (see kerberos(...
oval:org.mitre.oval:def:6175 Security Vulnerabilities in the Solaris lpadmin(1M) and ppdmgr(1M) Utilities ...
oval:org.mitre.oval:def:5503 Security Vulnerabilities in the Solaris lpadmin(1M) and ppdmgr(1M) Utilities ...
oval:org.mitre.oval:def:6116 Security Vulnerability with IKE Packet Handling in Solaris libike Library may...
oval:org.mitre.oval:def:6061 Security Vulnerability in the Solaris Pseudo-terminal Driver (pty(7D)) may Ca...
oval:org.mitre.oval:def:5977 Security Vulnerability in the Solaris "autofs" Kernel Module may Allow a Loca...
oval:org.mitre.oval:def:6088 A Security Vulnerability in the Solaris ip(7P) Kernel Module's IP-in-IP Packe...
oval:org.mitre.oval:def:6038 Security Vulnerability in the Solaris IP(7p) Implementation, Related to Minor...
oval:org.mitre.oval:def:5641 A Security Vulnerability With the Solaris Crypto Driver May Cause a System Panic
oval:org.mitre.oval:def:6203 Security Vulnerability in the Solaris keysock Kernel Module may Lead to a Sys...

Open Source Vulnerability Database (OSVDB)

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
62221 OpenSolaris Default Configuration smbadm Windows Active Directory Domain Join...
62220 OpenSolaris Default Configuration kclient Windows Active Directory Domain Joi...
62046 Solaris Microcode Device UCODE_GET_VERSION IOCTL NULL Dereference Local DoS
61621 OpenSolaris hald(1M) Unspecified Audit Record Writing Failure
60874 OpenSolaris Kernel IP Module Multiple Function Race Condition DoS
60668 OpenSolaris Unspecified Local Privilege Escalation
60667 OpenSolaris Kernel Unspecified Remote DoS
60514 Solaris LDAP Client Configuration Cache Daemon (ldap_cachemgr(1M)) Multiple U...
60498 Solaris sshd(1M) Timeout Mechanism Unspecified Remote DoS
60177 OpenSolaris TCP sockets tcp_sendmsg Ancillary Data Memory Consumption Local DoS
59657 Solaris Sockets Direct Protocol (SDP) driver (sdp(7D)) Unspecified Remote Ker...
59354 Solaris Trusted Extensions Policy Unspecified Remote Bypass
59049 ZFS Filesystem on Solaris file_chown_self Privilege Local Restriction Bypass
58278 Solaris xscreensaver RandR Extension Resized Locked Screen Information Disclo...
58266 Solaris iSCSI Management iscsiadm / iscsitadm Command Local Privilege Escalation
58110 Solaris w(1) Utility Local Overflow
58005 Solaris lx Branded Zones Unspecified Local DoS
57895 Solaris Gnome-XScreenSaver (xscreensaver) Multiple Method Local Screen Lock DoS
57823 Solaris IPv6 Networking Stack Cassini Gigabit-Ethernet Device Driver (ce(7D))...
57457 Solaris sockfs Kernel Module Unspecified HTTP Requests Remote DoS
57355 Solaris pollwakeup Function Unspecified Local DoS
57169 Solaris sendfile / sendfilev Extended Library Functions Unspecified DoS
57151 Solaris Kernel Filesystem / Virtual Memory Subsystem Interaction Unspecified ...
56854 Solaris XScreenSaver (xscreensaver(1)) PopUp Window Information Disclosure
56682 Solaris Trusted Extensions Labeled Packet Handling Remote DoS

ExploitDB Exploits

id Description
11351 Solaris/Open Solaris UCODE_GET_VERSION IOCTL Denial of Service
4601 Ubuntu 6.06 DHCPd bug Remote Denial of Service Exploit

OpenVAS Exploits

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
2009-10-13 Name : Solaris Update for w and whodo 142286-01
File : nvt/gb_solaris_142286_01.nasl
2009-10-13 Name : Solaris Update for rpc.nisd 140917-02
File : nvt/gb_solaris_140917_02.nasl
2009-10-13 Name : Solaris Update for rpc.nisd 140918-02
File : nvt/gb_solaris_140918_02.nasl
2009-10-13 Name : Solaris Update for c2audit and auditconfig 140921-02
File : nvt/gb_solaris_140921_02.nasl
2009-10-13 Name : Solaris Update for c2audit and auditconfig 140922-02
File : nvt/gb_solaris_140922_02.nasl
2009-10-13 Name : Solaris Update for ipf ipftest 141020-03
File : nvt/gb_solaris_141020_03.nasl
2009-10-13 Name : Solaris Update for Sun iSCSI Device Driver and Utilities 119090-33
File : nvt/gb_solaris_119090_33.nasl
2009-10-13 Name : Solaris Update for ipf ipftest 141021-03
File : nvt/gb_solaris_141021_03.nasl
2009-10-13 Name : Solaris Update for IKE 114435-15
File : nvt/gb_solaris_114435_15.nasl
2009-10-13 Name : Solaris Update for in.dhcpd libresolv and BIND9 114265-19
File : nvt/gb_solaris_114265_19.nasl
2009-10-13 Name : Solaris Update for kernel 141414-10
File : nvt/gb_solaris_141414_10.nasl
2009-10-13 Name : Solaris Update for w and whodo 142285-01
File : nvt/gb_solaris_142285_01.nasl
2009-10-13 Name : Solaris Update for in.dhcpd libresolv and BIND9 112837-20
File : nvt/gb_solaris_112837_20.nasl
2009-10-13 Name : Solaris Update for kernel 141415-10
File : nvt/gb_solaris_141415_10.nasl
2009-09-23 Name : Solaris Update for klmmod 141734-03
File : nvt/gb_solaris_141734_03.nasl
2009-09-23 Name : Solaris Update for ipf ipftest 141021-01
File : nvt/gb_solaris_141021_01.nasl
2009-09-23 Name : Solaris Update for fasttrap 141765-01
File : nvt/gb_solaris_141765_01.nasl
2009-09-23 Name : Solaris Update for ipf ipftest 141020-01
File : nvt/gb_solaris_141020_01.nasl
2009-09-23 Name : Solaris Update for kernel 141415-04
File : nvt/gb_solaris_141415_04.nasl
2009-09-23 Name : Solaris Update for c2audit and auditconfig 140922-01
File : nvt/gb_solaris_140922_01.nasl
2009-09-23 Name : Solaris Update for fasttrap 141766-01
File : nvt/gb_solaris_141766_01.nasl
2009-09-23 Name : Solaris Update for c2audit and auditconfig 140921-01
File : nvt/gb_solaris_140921_01.nasl
2009-09-23 Name : Solaris Update for kernel 141414-02
File : nvt/gb_solaris_141414_02.nasl
2009-09-23 Name : Solaris Update for rpc.nisd 140918-01
File : nvt/gb_solaris_140918_01.nasl
2009-06-03 Name : Solaris Update for dhcp server and admin 109077-21
File : nvt/gb_solaris_109077_21.nasl

Information Assurance Vulnerability Management (IAVM)

id Description
2009-A-0113 Sun Solaris Remote Privilege Escalation Vulnerability
Severity: Category I - VMSKEY: V0021928
2009-A-0086 Sun Solaris iSCSI Management Commands Local Privilege Escalation Vulnerability
Severity: Category II - VMSKEY: V0021633
2009-T-0047 Sun Solaris Kernel Denial of Service Vulnerability
Severity: Category I - VMSKEY: V0019908
2009-T-0040 Sun Solaris Network File System Unauthorized Network Access Vulnerability
Severity: Category II - VMSKEY: V0019716
2009-T-0008 Sun Solaris IKE Packet Handling Security Vulnerability
Severity: Category I - VMSKEY: V0018293
2009-T-0003 Sun Solaris 10 IPv4 Forwarding Denial of Service Vulnerability
Severity: Category II - VMSKEY: V0017995
2009-T-0001 Sun Solaris X Inter Client Exchange Library (libICE) Denial of Service Vulner...
Severity: Category I - VMSKEY: V0017981
2008-T-0043 Multiple Sun Solaris snoop Vulnerabilities
Severity: Category II - VMSKEY: V0017141

Snort® IPS/IDS

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
Date Description
2017-08-29 Sun Solaris dhcpd malformed bootp denial of service attempt
RuleID : 43752 - Type : SERVER-OTHER - Revision : 2
2016-12-20 Adobe Flash Player LoadVars use-after-free attempt
RuleID : 40781 - Type : FILE-FLASH - Revision : 2
2016-12-20 Adobe Flash Player LoadVars use-after-free attempt
RuleID : 40780 - Type : FILE-FLASH - Revision : 2
2016-08-13 Adobe Flash Player loadPCMFromByteArray exception null pointer access attempt
RuleID : 39568 - Type : FILE-FLASH - Revision : 2
2016-08-13 Adobe Flash Player loadPCMFromByteArray exception null pointer access attempt
RuleID : 39567 - Type : FILE-FLASH - Revision : 2
2016-04-07 Cisco Prime Infrastructure API credentials enumeration attempt
RuleID : 38400 - Type : SERVER-WEBAPP - Revision : 1
2016-04-07 Cisco TelePresence Server denial of service attempt
RuleID : 38399 - Type : SERVER-WEBAPP - Revision : 1
2016-04-12 Adobe Flash Player malformed MP4 atom use-after-free attempt
RuleID : 38218 - Type : FILE-MULTIMEDIA - Revision : 2
2016-04-12 Adobe Flash Player malformed mp4 atom use-after-free attempt
RuleID : 38217 - Type : FILE-MULTIMEDIA - Revision : 2
2016-04-12 Adobe Flash Player malformed mp4 out of bounds write attempt
RuleID : 38210 - Type : FILE-MULTIMEDIA - Revision : 2
2016-04-12 Adobe Flash Player malformed mp4 out of bounds write attempt
RuleID : 38209 - Type : FILE-MULTIMEDIA - Revision : 2
2016-04-12 Adobe Flash Player MP4 length tag out of bounds read attempt
RuleID : 38202 - Type : FILE-MULTIMEDIA - Revision : 2
2016-04-12 Adobe Flash Player MP4 length tag out of bounds read attempt
RuleID : 38201 - Type : FILE-MULTIMEDIA - Revision : 2
2016-03-29 Java Library CommonsCollection unauthorized serialized object attempt
RuleID : 37859 - Type : SERVER-WEBAPP - Revision : 6
2016-03-24 Adobe Flash Player AAC audio memory corruption attempt
RuleID : 37840 - Type : FILE-FLASH - Revision : 2
2016-03-24 Adobe Flash Player AAC audio memory corruption attempt
RuleID : 37839 - Type : FILE-FLASH - Revision : 2
2016-03-22 Adobe Flash Player rectangle memory access violation attempt
RuleID : 37798 - Type : FILE-FLASH - Revision : 3
2016-03-22 Adobe Flash Player rectangle memory access violation attempt
RuleID : 37797 - Type : FILE-FLASH - Revision : 3
2016-03-22 Adobe Flash Player rectangle memory access violation attempt
RuleID : 37796 - Type : FILE-FLASH - Revision : 2
2016-03-22 Adobe Flash Player rectangle memory access violation attempt
RuleID : 37795 - Type : FILE-FLASH - Revision : 2
2016-03-22 Adobe Flash Player ActionScript 3 URLRequest class use after free attempt
RuleID : 37794 - Type : FILE-FLASH - Revision : 2
2016-03-22 Adobe Flash Player ActionScript 3 URLRequest class use after free attempt
RuleID : 37793 - Type : FILE-FLASH - Revision : 2
2016-03-22 Adobe Flash Player malformed Adobe Texture Format heap overflow attempt
RuleID : 37783 - Type : FILE-FLASH - Revision : 3
2016-03-22 Adobe Flash Player malformed Adobe Texture Format heap overflow attempt
RuleID : 37782 - Type : FILE-FLASH - Revision : 2
2016-03-22 Adobe Flash Player ASnative memory corruption attempt
RuleID : 37781 - Type : FILE-FLASH - Revision : 2

Nessus® Vulnerability Scanner

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
2016-09-16 Name: The remote device is missing a vendor-supplied security patch.
File: cisco-sa-20160323-l4f.nasl - Type: ACT_GATHER_INFO
2016-07-29 Name: The remote device is missing a vendor-supplied security patch.
File: cisco-sa-20160711.nasl - Type: ACT_GATHER_INFO
2016-04-19 Name: The remote Cisco Prime Infrastructure application running on the remote host ...
File: cisco_prime_infrastructure_20161291.nasl - Type: ACT_ATTACK
2016-04-15 Name: The remote host is affected by a denial of service vulnerability.
File: cisco_telepresence_server_cisco-sa-20160406-cts1.nasl - Type: ACT_GATHER_INFO
2016-04-06 Name: The remote device is missing a vendor-supplied security patch.
File: cisco-sa-20160323-smi-iosxe.nasl - Type: ACT_GATHER_INFO
2016-04-06 Name: The remote device is missing a vendor-supplied security patch.
File: cisco-sa-20160323-smi-ios.nasl - Type: ACT_GATHER_INFO
2016-04-06 Name: The remote device is missing a vendor-supplied security patch.
File: cisco-sa-20160323-ikev2-iosxe.nasl - Type: ACT_GATHER_INFO
2016-04-06 Name: The remote device is missing a vendor-supplied security patch.
File: cisco-sa-20160323-dhcpv6-ios.nasl - Type: ACT_GATHER_INFO
2016-04-06 Name: The remote device is missing a vendor-supplied security patch.
File: cisco-sa-20160323-dhcpv6-iosxe.nasl - Type: ACT_GATHER_INFO
2016-04-06 Name: The remote device is missing a vendor-supplied security patch.
File: cisco-sa-20160323-ikev2-ios.nasl - Type: ACT_GATHER_INFO
2016-04-01 Name: The remote device is affected by denial of service vulnerability.
File: cisco_cucm_a-20160323-sip.nasl - Type: ACT_GATHER_INFO
2016-04-01 Name: The remote device is affected by a denial of service vulnerability.
File: cisco-sa-20160323-lisp-ios.nasl - Type: ACT_GATHER_INFO
2016-04-01 Name: The remote device is affected by a denial of service vulnerability.
File: cisco-sa-20160323-lisp-nxos.nasl - Type: ACT_GATHER_INFO
2016-04-01 Name: The remote device is affected by denial of service vulnerability.
File: cisco-sa-20160323-sip-ios.nasl - Type: ACT_GATHER_INFO
2016-04-01 Name: TThe remote device is affected by denial of service vulnerability.
File: cisco-sa-20160323-sip-iosxe.nasl - Type: ACT_GATHER_INFO
2016-03-14 Name: The remote Gentoo host is missing one or more security-related patches.
File: gentoo_GLSA-201603-07.nasl - Type: ACT_GATHER_INFO
2016-03-09 Name: The remote device is missing a vendor-supplied security patch.
File: cisco-sa-20160302-netstack-nxos.nasl - Type: ACT_GATHER_INFO
2016-03-03 Name: The remote device is missing a vendor-supplied security patch.
File: cisco-sn-CSCuy25800-nxos.nasl - Type: ACT_GATHER_INFO
2016-02-29 Name: The remote device is missing a vendor-supplied security patch.
File: cisco_ike_fragmentation_rce.nasl - Type: ACT_ATTACK
2016-02-12 Name: The remote device is missing a vendor-supplied security patch.
File: cisco-sa-20160203-apic.nasl - Type: ACT_GATHER_INFO
2016-02-12 Name: The remote openSUSE host is missing a security update.
File: openSUSE-2016-186.nasl - Type: ACT_GATHER_INFO
2016-02-11 Name: The remote Red Hat host is missing a security update.
File: redhat-RHSA-2016-0166.nasl - Type: ACT_GATHER_INFO
2016-02-11 Name: The remote openSUSE host is missing a security update.
File: openSUSE-2016-183.nasl - Type: ACT_GATHER_INFO
2016-02-11 Name: The remote FreeBSD host is missing one or more security-related updates.
File: freebsd_pkg_5d8e56c39e674d5b81c93a409dfd705f.nasl - Type: ACT_GATHER_INFO
2016-02-09 Name: The remote Windows host has a browser plugin installed that is affected by mu...
File: adobe_air_apsb16-04.nasl - Type: ACT_GATHER_INFO